Patents Assigned to Citrix System, Inc.
  • Patent number: 11095567
    Abstract: The present disclosure describes a system and method to reduce the overall time taken to complete distributed process workflows. Each workflow can include multiple actions that are completed by or at different client devices. The actions of a workflow can be dependent on prior actions in the workflow. For example, a second client device may not be able to complete a second action until a first client device completes a first action in the workflow. The system can predict time periods and the geolocations where client devices are most likely to complete an assigned action. Using the selected time periods and geolocations, the system can transmit notifications to the client devices when the action is most likely to be completed.
    Type: Grant
    Filed: March 4, 2020
    Date of Patent: August 17, 2021
    Assignee: Citrix Systems, Inc.
    Inventors: Praveen Raja Dhanabalan, Saurabh Pant
  • Patent number: 11095562
    Abstract: Described embodiments provide for low-latency classification of flows, via an intelligent learning-based system. In one implementation, a packet processor may utilize destination internet protocol (IP) addresses and domains identified in first packets of flows to determine if a similar flow has been previously received, directed to the same address and domain, or apply default routing and policy rules if not. The packet processor may subsequently fully classify the flow; generate a record in an association database for the combination of application, address, and domain, and a starting confidence level; and apply proper routing and policy rules. A subsequent flow for the same application and destination IP address may then be classified as the same as the prior flow, with corresponding routing and policy rules applied. The packet processor may continue to fully classify the flow, and upon full classification, the database entry may be updated and the confidence level adjusted.
    Type: Grant
    Filed: November 26, 2019
    Date of Patent: August 17, 2021
    Assignee: Citrix Systems, Inc.
    Inventor: Marco Antonio Murgia
  • Patent number: 11095804
    Abstract: Methods and systems for automatic image capture are described herein. A user device may determine a reference orientation of the user device. The user device may monitor orientations of the user device as the user device is moved and/or rotated. Based on the reference orientation and the monitored orientations, the user device may determine to automatically capture images. The user device may organize captured images into a file for storing and/or sharing.
    Type: Grant
    Filed: June 18, 2019
    Date of Patent: August 17, 2021
    Assignee: Citrix Systems, Inc.
    Inventor: Lei Cao
  • Publication number: 20210247879
    Abstract: Embodiments described include a method for providing context-aware input across network applications. The method can include establishing a plurality of sessions for a user with a plurality of network applications via an embedded browser within a client application. The method can include storing input activities of the user across the plurality of network applications to a data storage. The method can include detecting input focus on an input element of a network application of the plurality of network applications, the input element having a type of data to be inputted. The method can include identifying one or more inputs of the type of data used in another network application of the plurality of network applications stored in the data storage. The method can include providing the one or more inputs from another network application as selectable input for the input element of the network application.
    Type: Application
    Filed: April 27, 2021
    Publication date: August 12, 2021
    Applicant: Citrix Systems, Inc.
    Inventor: Abhishek Chauhan
  • Patent number: 11087008
    Abstract: Embodiments described include systems and methods for using an HTML-based application integrated with an embedded browser on a client device, for trusted data transfer for instance. An HTML-based application within an embedded browser of a client device can provide access to a network application and its resources. The HTML-based application can establish a secure session for the network application between a server and the HTML-based application. The embedded browser can determine that the HTML-based application is a trusted application via application of one or more policies. With the secure session established and responsive to determining that the HTML-based application is a trusted application, the embedded browser may establish at least one virtual channel between the embedded browser and the HTML-based application. Using the at least one virtual channels, the embedded browser can transfer data between the secure session of the network application and the operating system (OS) of the client device.
    Type: Grant
    Filed: September 19, 2018
    Date of Patent: August 10, 2021
    Assignee: Citrix Systems, Inc.
    Inventors: Vipin Borkar, Santosh Sampath, Deepak Sharma, Arvind SankaraSubramanian
  • Patent number: 11089113
    Abstract: Described embodiments provide systems and methods for pushing session information to a newly joined node in a cluster of nodes. In the cluster, each node may maintain a session table of existing sessions. One or more nodes may detect a new node has joined the cluster. Each node, responsive to the detection, may apply a hash function on a tuple of each session of the existing sessions in the session table of the node to determine whether one or more existing sessions are identified to be owned by the new node as a result of the hash function. Each node, responsive to identifying that one or more sessions are to be owned by the new node, may push corresponding session information to the new node. The new node may become configured to receive a packet corresponding to the one or more sessions and to process the packet.
    Type: Grant
    Filed: August 7, 2017
    Date of Patent: August 10, 2021
    Assignee: Citrix Systems, Inc.
    Inventors: Sandhya Gopinath, Sathaiah Dontula, Ranjith Nath
  • Patent number: 11089091
    Abstract: Described embodiments provide systems and methods for zone selection for distributed services. A device records latency data measured for interactions between each of a plurality of clients and a service hosted by servers in two or more zones. The device directs network communications from each of the plurality of clients to respective servers hosting the service based on zones assigned to each of the plurality of clients. The device assigns clients to zones based on the recorded latency data. For example, the device identifies a grouping for a client, determines whether the recorded latency data indicates that latency for clients in the grouping is increasing faster than a threshold rate, and selects, responsive to the determination, a zone indicated by a selected set of recorded latency data as lowest in latency.
    Type: Grant
    Filed: November 8, 2019
    Date of Patent: August 10, 2021
    Assignee: Citrix Systems, Inc.
    Inventor: Kiran Kumar
  • Publication number: 20210243196
    Abstract: Embodiments described include systems and methods for securely managing browser plugins via embedded browser. The solution enables a client application or embedded browser to dynamically load the browser components into the embedded browser based on a risk or security profile and one or more policies. The policies can be centrally managed to enable only allowed browser components to be loaded within the embedded browser for a given risk profile. Based on the risk profile, a session established by the embedded browser can be transferred from the client application to a hosted browser at a secure sever. When the session is transferred to the hosted browser, the present system can also redirect the browser component configurations to the hosted browser such that the same browser components are enabled, disabled, or modified at the hosted browser.
    Type: Application
    Filed: April 22, 2021
    Publication date: August 5, 2021
    Applicant: Citrix Systems, Inc.
    Inventors: Vipin Borkar, Santosh Sampath, Deepak Sharma, Arvind SankaraSubramanian
  • Publication number: 20210243233
    Abstract: A computer system is provided. The computer system includes a memory and a processor. The processor is configured to scan user interface (UI) data representative of a plurality of UI controls; detect a portion of the UI data associated with private information, the portion corresponding to a UI control of the plurality of UI controls; record first session data comprising an obfuscated version of the UI control and unobfuscated versions of other UI controls of the plurality of UI controls; record second session data comprising an unobfuscated version of the UI control; encrypt the second session data to generate encrypted session data; and store the encrypted session data in association with the first session data.
    Type: Application
    Filed: February 3, 2020
    Publication date: August 5, 2021
    Applicant: Citrix Systems, Inc.
    Inventors: Manbinder Pal Singh, Georgy Momchilov
  • Publication number: 20210243227
    Abstract: Systems and methods for detecting attacks using a handshake request are provided. A plurality of devices can receive a plurality of handshake requests to establish TLS connections that include a respective application request. At least one of the plurality of handshake requests can include a first application request. The plurality of devices can record each of the respective application requests to a registry of application requests. A first device of the plurality of devices can receive a subsequent handshake request to establish a subsequent TLS connection that includes the first application request. The first device can query, prior to accepting the first application request, the registry for the first application request. The first device can determine whether to accept or reject the first application request responsive to identifying from the query that the first application request has not been or has been recorded in the registry.
    Type: Application
    Filed: April 21, 2021
    Publication date: August 5, 2021
    Applicant: Citrix Systems, Inc.
    Inventors: Andrew Penner, Tushar Kanekar
  • Patent number: 11082499
    Abstract: Methods, systems, and computer-readable media for transferring hosted web browser sessions between browser servers are described herein. In various embodiments, a broker service may create a browser server pool from a plurality of browser servers. The broker service may connect a client agent with a first web browser session in a first browser server in the browser server pool. The broker service, responsive to a determination that the first web browser session needs to be transferred to a second browser server in the browser server pool, may request and receive a session context from the first web browser session, launch a second web browser session in the second browser server, initialize the second web browser session with the session context from the first web browser session, transfer the client agent from the first web browser session to the second web browser session, and terminate the first web browser session.
    Type: Grant
    Filed: October 19, 2015
    Date of Patent: August 3, 2021
    Assignee: Citrix Systems, Inc.
    Inventor: Juan Rivera
  • Patent number: 11082453
    Abstract: The present disclosure is directed towards systems and methods of authenticating a client. A device intermediary to clients servers that provide one or more resources can receive a request from a client to access a resource of the one or more resources. The device can select a login schema associated with the request that includes a definition of a login form. The login schema may correspond to an authentication protocol. The device can generate the login form responsive to the request. The login form can be constructed according to the definition provided by the selected login schema. The device can provide the login form for display via the client. The device can receive information inputted into the login form via the client. The device can establish access to the resource responsive to authentication of the client based on the information and the authentication protocol.
    Type: Grant
    Filed: October 3, 2019
    Date of Patent: August 3, 2021
    Assignee: Citrix Systems, Inc.
    Inventors: Dileep Reddem, Pratap Ranjan Tiwary, Arkesh Kumar, Naresh Babu Jampani
  • Patent number: 11082451
    Abstract: A technique for managing communications over a network maintains multiple network paths simultaneously, exchanging the same data redundantly through the network paths and allowing a receiver to select one of the network paths as its source of data. In the event that a first, currently-selected network path becomes weak, for example, the receiver automatically and seamlessly switches its source of data to a second network path, while the first network path remains operational.
    Type: Grant
    Filed: August 21, 2019
    Date of Patent: August 3, 2021
    Assignee: Citrix Systems, Inc.
    Inventors: Nivedita Ojha, Derek Thorslund, Stephen Wilson
  • Patent number: 11082429
    Abstract: A technique provides access to content within a computing environment. The technique involves identifying a set of network addresses of a webpage, the webpage being associated with an application. Each of the set of network addresses is associated with content related to the application, and at least one of the set of network addresses is associated with content that is blocked. The technique further involves generating a set of assessed values for the set of network addresses of the webpage based on assessment criteria, and configuring a content filter to allow access to the content associated with the at least one of the set of network addresses based on the set of assessed values.
    Type: Grant
    Filed: November 5, 2018
    Date of Patent: August 3, 2021
    Assignee: Citrix Systems, Inc.
    Inventors: Manbinder Pal Singh, Leo C. Singleton, IV
  • Patent number: 11080408
    Abstract: Embodiments of the disclosure include systems and methods for secure storage and/or retrieval of customer secrets by, e.g., a cloud services provider. According to methods, secret data that is to be securely stored may be transmitted, along with an initialization vector, to an encryption service for encryption using a private key stored on in a remote key vault. The encrypted data can be returned and stored, in its encrypted form, in a secure storage along with the initialization vector data. To retrieve the securely stored data, embodiments disclose retrieving the encrypted form of the data and transmitting it, along with its related initialization vector data, to the encryption service for decryption using the private key stored in the remote key vault. The decrypted data can then be made available to a requesting product service.
    Type: Grant
    Filed: August 27, 2019
    Date of Patent: August 3, 2021
    Assignee: Citrix Systems, Inc.
    Inventors: Thomas Kludy, Ricardo Fernando Feijoo
  • Patent number: 11080514
    Abstract: A smart device having a photo processing system, and a related program product and method for processing photos. The photo processing system includes: a detector that detects when a photo is displayed on the smart device; an auto capture system that captures a viewer image from a front facing camera on the smart device in response to detecting that the photo is being displayed; a facial matching system that determines whether the viewer image matches any face images in the photo; and an auto zoom system that enlarges and displays a matched face image from the photo.
    Type: Grant
    Filed: September 13, 2019
    Date of Patent: August 3, 2021
    Assignee: Citrix Systems, Inc.
    Inventors: Nandikotkur Achyuth, Divyansh Deora, Arnav Akhoury
  • Publication number: 20210234903
    Abstract: Embodiments described include systems and methods for generating and displaying live objects for network applications. Live objects may be created from applications (apps) that are served from and/or hosted on one or more servers, such as web applications and software-as-a-service (SaaS) applications, and shared with one or more recipients. The objects may be loaded or accessed as if they were normal network applications, and the recipients may see the latest or “live” version of content as shown to the live object creator, including user- or device-specific data of the creator, under full access policy control, without requiring access to credentials of the live object creator.
    Type: Application
    Filed: April 15, 2021
    Publication date: July 29, 2021
    Applicant: Citrix Systems, Inc.
    Inventor: Abhishek Chauhan
  • Publication number: 20210234845
    Abstract: Techniques are provided for secure message passing. A sender process has a clear (non-encrypted) text message to pass to a recipient process as an encrypted message. The sender generates a message encryption key (MEK) for encrypting the message and sends the MEK to a first intermediary process, which encrypts the MEK. The sender uses the MEK to encrypt the message and passes both the encrypted message and the encrypted MEK to a second intermediary process. The second intermediary verifies that the sender is authorized to send messages and retains the encrypted message and the encrypted MEK. The second intermediary passes the encrypted message and the encrypted MEK to the recipient, which requests decryption of the encrypted MEK from the first intermediary. The first intermediary then decrypts the MEK and returns it to the recipient. Finally, the recipient decrypts the message using the MEK.
    Type: Application
    Filed: January 29, 2020
    Publication date: July 29, 2021
    Applicant: Citrix Systems, Inc.
    Inventor: Alexandr Smelov
  • Publication number: 20210234920
    Abstract: The present disclosure is directed generally to systems and methods for providing load balancing as a service. A load balancer executing on a device intermediary to a server and a plurality of clients can receive a request from an agent executing on the server. The request can be to initiate establishment of a transport layer connection. The load balancer can accept the request to establish the transport layer connection with the server. The load balancer can receive a request to access the server from a client of the plurality of clients. The load balancer can forward the request to the server via the transport layer connection established between the load balancer and the server responsive to the request of the server.
    Type: Application
    Filed: April 13, 2021
    Publication date: July 29, 2021
    Applicant: Citrix Systems, Inc.
    Inventor: Abhishek Chauhan
  • Patent number: 11075831
    Abstract: Embodiments of the present disclosure describe a system and method for dynamically duplicating network packets onto a reliable link. Network devices can be connected by a primary link and by a secondary link. As the network quality of the first link degrades, the system can adaptively duplicate network packets onto the second link. As a high priority link, the secondary link can have less total bandwidth when compared to the primary link. Accordingly, all the traffic traversing the primary link may not be able to be duplicated onto the secondary link to preserve network reliability when the quality of the first link degrades. The present solution can effectively manage the bandwidth of the secondary link and set duplication rates that control the duplication of the packets onto the secondary link.
    Type: Grant
    Filed: July 15, 2019
    Date of Patent: July 27, 2021
    Assignee: Citrix Systems, Inc.
    Inventor: Daljit Singh